-
Add the option to change the output of the report from the gitleaks scan.
I think it's useful to have SARIF as the default, as Github actions can upload this for code scanning.
please see PR #34 for…
-
Starting this morning, we started seeing the following in our github actions workflows:
checkov -d . --output sarif --soft-fail --download-external-modules true
Error: -16 …
-
Hi, is it in the roadmap to make PHP_CodeSniffer provide [SARIF](https://sarifweb.azurewebsites.net/) output ? (SARIF is the OASIS common format for all analysis tools )
It would help improve its […
-
### Environment
- Visual Studio version: 2022 Community 17.4.5
- CodeMaid version: 12.0
- Code language: C#, WPF
### Description
Replace this text with a short description and code sample.
Whe…
-
For example, this part of code for github action send scan result to GH security tab your repo.
```
- name: Upload Trivy scan results to GitHub Security tab
uses: github/codeql-action/uplo…
-
I think it might be useful to include a link to the docs (e.g. https://find-sec-bugs.github.io/bugs.htm#PATH_TRAVERSAL_IN) in the generated report. I verified that this link can be found in the SARIF …
-
Hey y'all.
The readme only has this for usage:
```
pip install sarif-om
import sarif_om
```
I'm reading through the microsoft sarif tutorials here:
https://github.com/microsoft/sarif-tuto…
-
👋 Hello! Not sure if this is the right place to raise this issue, but we've noticed that the way Fortify SCA is generating SARIF documents is causing a bad user experience with GitHub Code Scanning.
…
-
Platforms: linux
This test was disabled because it is failing in CI. See [recent examples](https://hud.pytorch.org/flakytest?name=test_save_with_without_initializer_dont_include_initializer_no_fake_m…
-
The following improvements should be made to the RESTler results format so results are more easily consumed by tools in a CI/CD test pipeline (e.g. for automatic bug filing):
A single json file tha…